Skip to content

indy-credx 1.0.0
Compare
Choose a tag to compare
@andrewwhitehead andrewwhitehead released this 12 Jul 00:16
· 49 commits to main since this release
v1.0.0
8f51b31
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

This release switches the backend for indy-credx from ursa (which is now archived) to the new anoncreds-clsignatures package.

There are relatively minor breaking changes to the API:

  • MasterSecret is renamed to LinkSecret.
  • Creating a revocable credential no longer requires a tails file.
  • Updating a revocation registry requires the credential definition and revocation private key, instead of the tails file.

There are also important security fixes:

  • For issuers, new revocation registries must be created due to changes to the tails file contents. Credentials should be re-issued.
  • For provers, the proof of non-revocation has been updated. This means that verifiers that have not been upgraded will not be able to verify the new proof.
  • For verifiers, a new FFI method is added to verify either the older non-revocation proof format or the new proof format. This is only added to allow for a more gradual upgrade of the ecosystem, and will be removed in a future version.

Performance is generally improved, especially for operations such as creating a new revocation registry.

Assets 6
Loading